siemens

2,361 tracked vulnerabilities.

CVE-2025-40804 CRITICAL
SIMATIC Virtualization as a Service - Info Disclosure
Sep 09, 2025
CVSS 9.1
EPSS 0.00
CVE-2025-40803 LOW
RUGGEDCOM RST2428P 6GK6242-6PA00 - Unauthenticated Exposure of Sensitive Information
Sep 09, 2025
CVSS 3.1
EPSS 0.00
CVE-2025-40802 LOW
RUGGEDCOM RST2428P - Denial of Service via High Volume Query Requests
Sep 09, 2025
CVSS 3.1
EPSS 0.00
CVE-2025-40798 HIGH
SIMATIC PCS neo and User Management Component < 2.15.1.3 - Unauthenticated Out-of-bounds Read
Sep 09, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-40797 HIGH
SIMATIC PCS neo and User Management Component < 2.15.1.3 - Unauthenticated Denial of Service via Out-of-bounds Read
Sep 09, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-40796 HIGH
SIMATIC PCS neo and User Management Component < 2.15.1.3 - Unauthenticated Out-of-Bounds Read
Sep 09, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-40795 CRITICAL
SIMATIC PCS neo and User Management Component < 2.15.1.3 - Unauthenticated Stack-based Buffer Overflow
Sep 09, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-40757 MEDIUM
APOGEE PXC Series - Info Disclosure
Sep 09, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-40594 MEDIUM
SINAMICS G220/S200/S210 V6.4 < HF2/7/2 - Unauthenticated Privilege Escalation via Factory Reset
Sep 09, 2025
CVSS 6.3
EPSS 0.00
CVE-2025-38502 HIGH
Linux Kernel 5.9-6.16.0 - Out-of-bounds Read in cgroup Local Storage
Aug 16, 2025
CVSS 7.1
EPSS 0.00
CVE-2025-40758 HIGH
Mendix SAML Module - Signature Validation Account Hijacking
Aug 14, 2025
CVSS 8.7
EPSS 0.00
CVE-2025-40770 HIGH
SINEC Traffic Analyzer - Man-in-the-Middle
Aug 12, 2025
CVSS 7.4
EPSS 0.00
CVE-2025-40769 HIGH
SINEC Traffic Analyzer < V3.0 - Cross-Site Scripting via Unsafe Content Security Policy
Aug 12, 2025
CVSS 7.4
EPSS 0.00
CVE-2025-40768 HIGH
SINEC Traffic Analyzer < 3.0 - Unauthorized Access via Exposed Internal Service Port
Aug 12, 2025
CVSS 7.3
EPSS 0.00
CVE-2025-40767 HIGH
SINEC Traffic Analyzer <V3.0 - Privilege Escalation
Aug 12, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-40766 MEDIUM
SINEC Traffic Analyzer < 3.0 - Denial of Service via Uncontrolled Docker Resource Consumption
Aug 12, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-40764 HIGH
Simcenter Femap V2406 < 2406.0003 and V2412 < 2412.0002 - Out-of-bounds Read via BMP File Parsing
Aug 12, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-40762 HIGH
Simcenter Femap V2406 < 2406.0003 and V2412 < 2412.0002 - Out-of-bounds Write via STP File Parsing
Aug 12, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-40761 HIGH
Siemens RUGGEDCOM ROX - Authentication Bypass via Built-In-Self-Test Mode
Aug 12, 2025
CVSS 7.6
EPSS 0.00
CVE-2025-40759 HIGH
SIMATIC S7-PLCSIM V17, STEP 7 V17<9, STEP 7 V18, STEP 7 V19<4, STEP...
Aug 12, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-40753 MEDIUM
POWER METER SICAM - Info Disclosure
Aug 12, 2025
CVSS 6.2
EPSS 0.00
CVE-2025-40752 MEDIUM
POWER METER SICAM - Info Disclosure
Aug 12, 2025
CVSS 6.2
EPSS 0.00
CVE-2025-40751 MEDIUM
SIMATIC RTLS Locating Manager < 3.3 - Authenticated Credential Exposure in Report Client
Aug 12, 2025
CVSS 6.3
EPSS 0.00
CVE-2025-40746 CRITICAL
SIMATIC RTLS Locating Manager < 3.2 - Authenticated Remote Code Execution via Backup Script Input Validation
Aug 12, 2025
CVSS 9.1
EPSS 0.01
CVE-2025-40743 HIGH
SINUMERIK 828D/840D/ONE/MC Authentication Bypass via VNC Access Service
Aug 12, 2025
CVSS 8.3
EPSS 0.00